Lucene search
K

148 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2 days ago11 views

Security Bulletin: Due to IBM Storage Scale, IBM Cloud Pak System is affected by multiple vulnerabilities [CVE-2025-48976, CVE-2025-30204, CVE-2025-1137].

Summary Execute privileged command and denial of service vulnerabilities found in IBM Storage Scale previously known as IBM Spectrum Scale affect IBM Cloud Pak System. These vulnerabilities were addressed in IBM Cloud Pak System v2.3.6.1 and IBM Cloud Pak System v2.3.5.1 Vulnerability Details...

8.8CVSS7.1AI score0.63258EPSS
Exploits1Affected Software2
Rockylinux
Rockylinux
added 2026/05/21 4:24 p.m.11 views

osbuild-composer security update

An update is available for osbuild-composer. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list A service for building customized OS artifacts, such as VM images an...

7.5CVSS5.8AI score0.00693EPSS
Exploits0
OSV
OSV
added 2026/05/21 4:24 p.m.8 views

RLSA-2025:7967 Important: osbuild-composer security update

A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients. Security Fixes:...

7.5CVSS6.8AI score0.00693EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/02 12:0 a.m.6 views

Oracle Linux 9 : grafana (ELSA-2026-6382)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-6382 advisory. - Resolves RHEL-158728: CVE-2026-25679 - Resolves RHEL-144959: CVE-2026-21721 - Resolves RHEL-146863: CVE-2025-61726 - Resolves RHEL-147081: CVE-2025-61729 -...

10CVSS7.2AI score0.97809EPSS
Exploits11References2
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.3 views

openSUSE 16 Security Update : docker-stable (openSUSE-SU-2026:20366-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20366-1 advisory. - CVE-2025-58181: Fixed unbounded memory consumption. bsc1253904 - CVE-2025-30204: Fixed a bug in jwt-go which allows excessive memory allocatio...

7.5CVSS6.8AI score0.00693EPSS
Exploits0References7
CBLMariner
CBLMariner
added 2026/03/10 10:56 p.m.6 views

CVE-2025-30204 affecting package influxdb for versions less than 2.7.5-13

CVE-2025-30204 affecting package influxdb for versions less than 2.7.5-13. A patched version of the package is available...

7.5CVSS7.3AI score0.00693EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/03/09 2:32 p.m.5 views

CVE-2025-30204 affecting package kube-vip-cloud-provider for versions less than 0.0.2-26

CVE-2025-30204 affecting package kube-vip-cloud-provider for versions less than 0.0.2-26. A patched version of the package is available...

7.5CVSS7.3AI score0.00693EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.6 views

SUSE SLES12 Security Update : docker-stable (SUSE-SU-2026:0641-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2026:0641-1 advisory. - CVE-2025-30204: Fixed a vulnerability in jwt-go which allowed excessive memory allocation during header parsing. bsc1240513 Tenable has extracted the...

7.5CVSS6AI score0.00693EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/02 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2026:0641-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00693EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/02 12:0 a.m.1 views

openSUSE Security Advisory (SUSE-SU-2026:0659-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.00693EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.3 views

SUSE SLES15 / openSUSE 15 Security Update : docker-stable (SUSE-SU-2026:0659-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0659-1 advisory. - CVE-2025-30204: Fixed a vulnerability in jwt-go which allowed excessive memory allocation during header parsing. bsc1240513...

7.5CVSS7.2AI score0.00693EPSS
Exploits0References4
OSV
OSV
added 2026/02/25 4:25 p.m.3 views

SUSE-SU-2026:0641-1 Security update for docker-stable

This update for docker-stable fixes the following issues: - CVE-2025-30204: Fixed a vulnerability in jwt-go which allowed excessive memory allocation during header parsing. bsc1240513...

7.5CVSS5.5AI score0.00693EPSS
Exploits0References3
OSV
OSV
added 2026/02/20 2:27 p.m.4 views

SUSE-SU-2026:0592-1 Security update for vexctl

This update for vexctl fixes the following issues: - Update to version 0.4.1+git78.f951e3a: - CVE-2025-22868: Unexpected memory consumption during token parsing in golang.org/x/oauth2. bsc1239186 - CVE-2024-45337: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in...

9.1CVSS8.6AI score0.03092EPSS
Exploits5References19
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.6 views

Oracle Linux 9 : grafana (ELSA-2026-2920)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2920 advisory. - Resolves RHEL-144959: CVE-2026-21721 - Resolves RHEL-146863: CVE-2025-61726 - Resolves RHEL-147081: CVE-2025-61729 - Resolves RHEL-147370:...

10CVSS7.2AI score0.97809EPSS
Exploits13References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/30 8:29 a.m.11 views

Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses golang-jwt which is vulnerable to CVE-2025-30204

Summary IBM Maximo Application Suite - Visual Inspection component uses golang-jwt which is vulnerable to CVE-2025-30204, This bulletin contains information regarding the vulnerability and its remediation. Vulnerability Details CVEID:CVE-2025-30204 DESCRIPTION: golang-jwt is a Go implementation o...

7.5CVSS5.9AI score0.00693EPSS
Exploits0Affected Software1
OPENSUSE Linux
OPENSUSE Linux
added 2026/01/28 12:0 a.m.4 views

zli-2.1.14-1.1 on GA media (moderate)

zli-2.1.14-1.1 on GA media Announcement ID: openSUSE-SU-2026:10099-1 Rating: moderate Cross-References: CVE-2025-30204 CVSS scores: CVE-2025-30204 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-30204 SUSE : 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N...

8.7CVSS5.9AI score0.00693EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2026/01/28 12:0 a.m.3 views

zot-registry-2.1.14-1.1 on GA media (moderate)

zot-registry-2.1.14-1.1 on GA media Announcement ID: openSUSE-SU-2026:10100-1 Rating: moderate Cross-References: CVE-2025-30204 CVSS scores: CVE-2025-30204 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-30204 SUSE : 8.7...

8.7CVSS5.9AI score0.00693EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/23 12:3 p.m.6 views

Security Bulletin: A vulnerability in the golang-jwt package affects IBM DB2 Big SQL on Cloud Pak for Data

Summary A vulnerability in the golang-jwt 4.5 package affects IBM DB2 Big SQL 7.8.0 on Cloud Pak for Data 5.1 and earlier Vulnerability Details CVEID:CVE-2025-30204 DESCRIPTION: golang-jwt is a Go implementation of JSON Web Tokens. Starting in version 3.2.0 and prior to versions 5.2.2 and 4.5.2,...

7.5CVSS5.7AI score0.00693EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 8 : osbuild-composer-101-3.el8_10.ML.1 (AXSA:2025-9957:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9957:03 advisory. golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing CVE-2025-30204 Tenable has extracted the preceding description block directly...

7.5CVSS7.3AI score0.00693EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 9 : osbuild-composer-118.2-1.el9_5.ML.1 (AXSA:2025-9935:02)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9935:02 advisory. golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing CVE-2025-30204 Tenable has extracted the preceding description block directly...

7.5CVSS7.3AI score0.00693EPSS
Exploits0References2
Rows per page
Query Builder